[Secure-testing-commits] r39671 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Feb 14 10:52:39 UTC 2016
Author: carnil
Date: 2016-02-14 10:52:38 +0000 (Sun, 14 Feb 2016)
New Revision: 39671
Modified:
data/CVE/list
Log:
Add one linux issue (Incorrect branch fixups for eBPF allow arbitrary read)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-14 10:43:53 UTC (rev 39670)
+++ data/CVE/list 2016-02-14 10:52:38 UTC (rev 39671)
@@ -1,3 +1,10 @@
+CVE-2016-XXXX [Incorrect branch fixups for eBPF allow arbitrary read]
+ - linux <unfixed>
+ [jessie] - linux <not-affected> (Vulnerable code not present)
+ [wheezy] - linux <not-affected> (Vulnerable code not present)
+ - linux-2.6 <not-affected> (Vulnerable code not present)
+ NOTE: Fixed by: https://git.kernel.org/linus/a1b14d27ed0965838350f1377ff97c93ee383492 (v4.5-rc4)
+ NOTE: Introduced by: https://git.kernel.org/linus/9bac3d6d548e5cc925570b263f35b70a00a00ffd (v4.1-rc1)
CVE-2016-XXXX [exec functions ignore length but look for NULL termination]
- php5 <unfixed>
- php5.6 5.6.18+dfsg-1
More information about the Secure-testing-commits
mailing list